Manage User Identities on Confluent Cloud

User account types

Confluent Cloud provides two user account types (local and SSO) and four authentication methods (username/password, Google, GitHub, and SSO), as summarized in the following table. Click on the account type to go directly to the relevant section below.

User account type Authentication method Description
Local Username/password A local user that authenticates using a username and password.
Local Google (using Sign in with Google) A local user account that authenticates using a user’s Google account.
Local GitHub (using Sign in with GitHub) A local user account that authenticates using a user’s GitHub account.
SSO SSO A user account that authenticates using single sign-on (SSO) with an organization’s identity provider (IdP).

Note that Confluent Cloud user accounts have the following conditions and limitations:

Use multi-factor authentication with user accounts

Multi-factor authentication (MFA), including two-factor authentication (2FA), is supported for Confluent Cloud accounts when you use single sign-on (SSO) with an MFA option, provided by your SSO identity provider.

Note

For local user accounts in Confluent Cloud, multi-factor authentication is not available.

For information on security protections used by Confluent to prevent unauthorized access to user accounts and Confluent Cloud resources, see Security Protections for Authentication on Confluent Cloud.